There is no magic fairy dust protecting Macs - Dai Zovi, security researcher and co-author of The Mac Hacker's Handbook.
Interesting - this is the first time that I have heard about Shockwave being used to redirect victims to a malicious site.
It's probably an error on the journalist's side and s/he really meant "Flash", just didn't know the difference between the two.
This may be of interest
I have flash disabled and only allow it when absolutely necessary.
My reason for disabling first was to stop the ads that run over the page, why anyone thinks annoying potential customers in that way is good business sense is beyond me.
After reading your posts here I will make sure I disable it straight away when don't need it.
Just a note for any advertisers who may read this, with a flash ad I cannot see the link address so I won't click on them with .gif images I can see the address so may actually click on them if the ad interests me.